# Trend Micro Apex Central (syslog)

In this guide, you will set up the Trend Micro Apex Central connector within Radiant in order to forward Trend Micro logs to Radiant.

### Prerequisites 

* [ ] Admin access to the Apex Central Console

### Add the data connector in Radiant Security

1. Log in to [Radiant Security](https://app.radiantsecurity.ai/).
2. From the navigation menu, click **Settings** > **Data Connectors** and click **+ Add Connector**.
3. Search for and select the **Trend Micro Apex Central (syslog)** option, click **Data** **Feeds,** and then click **Credentials**.
4. Under **Credential Name**, give the credential an identifiable name (e.g. `Trend Micro Apex Central Credentials`).
5. Under **Required Credentials**, in the **Connector tag** field enter a value. This value will act as the salt to randomize the unique **Token** you’ll download in the next step.
6. Click **Add Connector.**
7. Copy and save the connector **Token** value using the clipboard option or download the **Token** file. You will need this token to complete the configuration.
8. Click **Done** to save your changes.

### Configure a local Radiant Security Agent

Refer to the [Install the Radiant Security Agent](https://help.radiantsecurity.ai/radiant-connectors/data-connectors/install-the-radiant-security-agent) guide to set up a local agent to collect the logs.

### Configure Trend Micro Apex Central to forward logs to the Radiant Security Log Collector

1. Log into the Apex Central Console.
2. Navigate to **Administration > Settings > Syslog Settings**.
3. Click **Enable syslog forwarding**.
4. Under **Syslog** **Settings**, configure the following settings:
   * **Server Address:** Enter the IP address of the local Radiant Security Syslog Collector previously deployed
   * **Port:** `514`
   * **Protocol**: `SSL/TLS`
   * If **Use server certificate** is selected, unselect it.
   * For **Format**, select `CEF`.
   * For **Frequency**, set `0 hours` and `1 minute`.

     <div align="left"><figure><img src="https://20705827.fs1.hubspotusercontent-na1.net/hubfs/20705827/Knowledge%20Base%20Articles/Trend%20Micro%20Apex%20Central%20(syslog)/Untitled.png" alt=""><figcaption></figcaption></figure></div>
   * For **Log** **Type**, select **Security** **Logs** from the drop-down and select all of the checkboxes.

     <figure><img src="https://20705827.fs1.hubspotusercontent-na1.net/hubfs/20705827/Knowledge%20Base%20Articles/Trend%20Micro%20Apex%20Central%20(syslog)/Untitled(1).png" alt=""><figcaption></figcaption></figure>
5. Click **Done**.


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://help.radiantsecurity.ai/radiant-connectors/data-connectors/trend-micro-apex-central-syslog.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.